1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
<?php
/**
* @version $Header$
* @package liberty
* @subpackage functions
*/
/**
* required setup
*/
namespace Smarty;
use Bitweaver\KernelTools;
use Bitweaver\Liberty\LibertyBase;
use Bitweaver\Liberty\LibertyContent;
require_once '../kernel/includes/setup_inc.php';
$staticContent = new LibertyContent();
$gContent = LibertyBase::getLibertyObject( $_REQUEST['parent_id'], !empty( $_REQUEST['parent_guid'] ) ? $_REQUEST['parent_guid'] : null );
$XMLContent = "";
if( !$gContent->hasUserPermission( 'p_liberty_post_comments', true, true)) {
$statusCode = 401;
$XMLContent = KernelTools::tra( "You do not have the required permissions to post new comments" );
} elseif( $gContent->isCommentable() ) {
/**
* If we are receiving ajax comments request make sure our results also
* know we are using ajax comments. This is an insurance measure that if
* the originating content forced on ajax comments (even if off system
* wide) that the return results continue to use ajax comments. Don't take
* this out under penalty of death.
*/
$gBitSystem->setConfig( 'comments_ajax', 'y' );
$commentsParentId = $_REQUEST['parent_id'];
$comments_return_url = $_REQUEST['comments_return_url'];
include_once LIBERTY_PKG_INCLUDE_PATH.'comments_inc.php';
if( isset( $_REQUEST['post_comment_submit'] )) {
if ($storeComment->loadComment()){
$statusCode = 200;
$postComment = $storeComment->mInfo;
$postComment['parsed_data'] = LibertyContent::parseDataHash( $postComment, $storeComment );
} else {
//if store is requested but it fails for some reason - like captcha mismatch
$statusCode = 400;
}
} else {
//we assume preview request which we return as ok - our js callback knows what to do when preview is requested
$statusCode = 200;
}
$gBitSmarty->assign( 'comment', $postComment );
$gBitSmarty->assign( 'commentsParentId', $commentsParentId );
if( !empty( $formfeedback )){
$statusCode = 400;
$XMLContent = \Smarty::smarty_function_formfeedback( $formfeedback, $gBitSmarty );
}
$XMLContent .= $gBitSmarty->fetch( 'bitpackage:liberty/display_comment.tpl' );
} else {
$statusCode = 405;
$XMLContent = KernelTools::tra( "Sorry, you can not post a comment here." );
}
// We return XML with a status code
$mRet = "<req><status><code>".$statusCode."</code></status>"
."<content><![CDATA[".$XMLContent."]]></content></req>";
// Since we are returning xml we must report so in the header
// we also need to tell the browser not to cache the page
// see: http://mapki.com/index.php?title=Dynamic_XML
// Date in the past
header( "Expires: Mon, 26 Jul 1997 05:00:00 GMT" );
// always modified
header( "Last-Modified: ".gmdate( "D, d M Y H:i:s" )." GMT" );
// HTTP/1.1
header( "Cache-Control: no-store, no-cache, must-revalidate" );
header( "Cache-Control: post-check=0, pre-check=0", false );
// HTTP/1.0
header( "Pragma: no-cache" );
//XML Header
header( "content-type:text/xml" );
print_r( '<?xml version="1.0" encoding="UTF-8" standalone="yes" ?>' );
print_r( $mRet );
|
